Password length limits are often a sign of a legacy backend or insecure hashing, but did you know bcrypt only hashes the first 72 characters? It raises the question, should we be limiting password lengths when using bcrypt too? 🤔
https://securinglaravel.com/security-tip-should-you-limit-password-lengths/#Laravel